Evergreen Alliance Training Program for GIAC Cloud Security Essentials Certification (GCLD)

Attacking the Cloud and Responding to Intrusions
You will learn the fundamental processes and considerations involved in conducting penetration tests and responding to security incidents within cloud environments.

Cloud Account Fundamentals
You will learn the principles of cloud identity and access management (IAM) and security best practices for controlling access to cloud resources using various identity types.

Cloud Automation
You will learn how to provision and manage cloud infrastructure using Infrastructure as Code (IaC) and how to leverage automation for continuous security evaluations.

Cloud Logging Fundamentals
You will learn the basics of cloud logging, including methods for collecting logs to improve the effectiveness of security monitoring and response.

Cloud Networking Technology
You will learn essential network security concepts and how to apply them within cloud environments to protect against common network threats.

Containers and Cloud Storage
You will learn how to use container technologies, serverless compute resources, and secure cloud storage options to achieve scalability. You will also learn how to orchestrate and secure these resources effectively.

Discovering and Storing Sensitive Data
You will learn how to secure sensitive data in multi-tenant cloud environments, using encryption and data loss prevention techniques to prevent unauthorized access.

External Access and IAM Best Practices
You will learn best practices for integrating third-party services into cloud environments and how to assess the security and resiliency of these integrations.

Frameworks for Built-in Security
You will learn how to apply secure system development practices, implement application security frameworks, and integrate security into continuous integration/continuous deployment (CI/CD) pipelines.

Network Security Monitoring in the Cloud
You will learn how to collect and interpret network flow data and use network security monitoring practices to enhance cloud security detection and response.

Risk Management and Compliance
You will learn about regulatory and compliance requirements, risk management best practices, and the frameworks used to ensure security in cloud environments.

Secrets Management
You will learn how to secure sensitive user data and integrate authentication mechanisms into cloud environments to prevent unauthorized access.

Secure Compute Deployment
You will learn how to allocate and evaluate cloud compute resources securely, maintain the integrity of these resources through automation, and manage patching practices.

Securing Cloud Networks
You will learn how to isolate networks, secure remote access, and protect cloud environments from common network-based attacks with best practice security controls.

Understanding Shared Responsibility and Threat-Informed Defense
You will learn how to apply threat modeling techniques to design defenses for cloud resources, and gain an understanding of the shared responsibility model in cloud service delivery.

Using Sensitive Data
You will learn how to secure data in transit between cloud resources and users, and how to leverage cloud elasticity and high availability to protect sensitive data.